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The invention relates to a method and to a device 
for the authorization in data transraission systems 
employing a transaction authorization number (TAN) or a 
comparable password. According to a first step, the 
user sends a qualifying identification of the data 
input apparatus together with a request for the 
generation or for the selection of a transaction 
authorization number TAN or of comparable password from 
a data file from the data input apparatus to an 
authorization computer. In a second step the 
authorization computer generates the transaction 
authorization number TAN or the comparable password or 
selects them form a data file. According to a third 
step, the authorization computer sends the transaction 
authorization number TAN or the comparable password 
over a second transmission path different from the 
first transmission path to a monitor, for example a 
handy or a pager. According to a fourth step, the user 
reads this transaction authorization number TAN or the 
comparable password from the receiver and enters the 
transaction authorization number TAN or the comparable 
password into the data input apparatus. According to a 
fifth step, this transaction authorization number TAN 
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or the comparable password is transmitted to the 
authorization computer. According to a sixth step, the 
authorization computer verifies the validity of the 
transaction-authorization number TAN or of the 
comparable password in order to establish or switch 
free, according to a seventh step, a connection between 
the data input apparatus and the receiver unit. 
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, METHOD POR AUTHORIZING IN DATA TRANSMISSION SYSTEMS 
BACKGROUND OF THE INVENTION 

1 . Field of the Invention 

5 The invention relates to a method for authorizing 

in data transmission and communication systems. 

2 . Brief Description of the Background of the 
Invention including Prior Art 

10 It is known that in telebanking or in remote 

terminal banking the user requires in addition to his 
or her permanent password (personal identification 
number PIN) for each individual transaction 
additionally a transaction authorization number (TAN) . 

15 Such transaction authorization numbers TANs are 

transmitted to the user in larger blocks by mail. 
Thus, there exists the risk that third persons receive 
knowledge of such transaction authorization numbers 
TANs and can perform a misuse in connection with the 

20 password. The risk is increased by such transaction 

authorization numbers TANs having a validity which is 
de facto unlimited in time. 

Furthermore, call-back systems are known, wherein 
the called-in system assures based on a call-back at 

25 the generally stored telephone number that the calling 
system is authorized and that no foreign system 
pretends to be an authorized system. The 
disadvantage of the call-back systems comprises that an 
unauthorized user, who has procured a functional access 

30 to the authorized calling system from any possible 
source, can work without a problem based on this 
illegally obtained authorization, since the call-back 
system checks only whether the call-back system has 
been called by a system which is authorized in 

35 principle by a basically authorized system. 
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Summary of the Invention 

At least preferred embodiments of the present 
invention furnish a method for authorizing and an 
authorization process in connection with data transmission 
5 and data communication, wherein the security of the 
transmission or communication is increased. 

Brief Description of the Invention 

In accordance with a first aspect of the present 

10 invention there is provided a method for the authorization 
of data transmission systems. A qualifying identification 
of a user is entered into a data input apparatus. The 
qualifying identification and a request for an 
authorization signal is transmitted from the data input 

15 apparatus to an authorization computer along a first 

transmission path. The authorization signal is established 
in the authorization computer. The authorization signal is 
sent from the authori-zation computer to a monitor along a 
second transmission path different as compared to the first 

20 transmission path. The authorization signal at the monitor 
is read by the user. The authorization signal is entered 
into the data input apparatus. The authorization signal is 
transmitted from the data input apparatus to the 
authorization computer. The validity of the authorization 

25 signal is verified in the authorization computer. A 

connection is established between the data input apparatus 
and a receiver unit upon verification of the validity of 
the authorization signal. 

The authorization signal can be transmitted from 

30 the data input apparatus to the authorization computer 
along the first transmission path. 

Acceptance of the authorization signal during 
verification of the validity of the authorization 
signal by the authorizing computer can be limited to a 

35 predefined number of times, to a predefined user time. 
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depending on a predetined number of data files 
being transmitted, or depending on a predefined size 
value of data files being transmitted. 

A password can be employed for allowing accessing a 
5 member selected from the group consisting of the data 
input apparatus, the monitor, and the receiver unit. 

The data transmitted from the data input apparatus 
to the receiver unit and vice versa or to the 
authorization computer and vice versa can be encoded. 
10 An apparatus for authorizing access to a 

communication line includes a data input apparatus. An 
authorization computer is connected through a first 
transmission path to the data input apparatus. A 
monitor is connected to the authorization computer and 
15 disposed such that upon reading of an authorization 

signal on a monitor by a user, the user can enter the 
authorization signal into the data input apparatus. A 
receiver unit is connectable to the data input 
apparatus through a line switchable by the 
20 authorization computer between a connected state and a 
disconnected state . 

The monitor can be a member selected from the group 
consisting of a pager, a handy, an email address, a net 
address, a telefax machine, a language output 
25 apparatus, an audio reproduction unit, a radio 
receiver, and a telephone. 

The monitor can be a radio receiver incorporated 
into the data input apparatus. The radio receiver can 
furnish the authorization signal on a display monitor 
30 of the data input apparatus. 

The radio receiver can include a user 
identification element furnished by a member selected 
from the group consisting of a magnetic card reader, a 
chip card reader, a graphic device for finger-print 
35 identification, and a graphic device for picture 
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identification . 

A first encoding module can be present in the 
authorization computer. A second encoding module can be 
present in the monitor. The encoding provided by the 
5 first encoding module matches the encoding of the 
second encoding module. 

The receiver unit can furnish a door-locking 
mechanism. 

The authorization computer and the receiver unit 

10 can be integrated into a single apparatus. 

Furthermore, the data input apparatus, the 
authorization computer, and the receiver unit can be 
integrated into one single apparatus. 

Wireless telecommunication apparatuses, such as for 

15 example Handys (Handie-Talkie is a tradename of the 
Motorola Communications Division) or pagers, are 
frequently furnished with the possibility to receive 
short alphanumeric communications, for example of the 
Short Message Service known in Germany as SMS-DIENST, 

20 and to display these communications on their display 

screen. A paging system is a communications system for 
summoning individuals such as doctors and nurses or for 
making public announcements. The present invention 
employs this possibility to receive short alphanumeric 

25 communications in order to transmit a transaction 
authorization number or a comparable password. 

In accordance with the first aspect of the present 
invention- the user transmits his or her identification, 
such as user identification, password, or the like, and/or 

30 an identification characterization of the data input 
apparatus together with a request for generating a 
transaction authorization number TAN, or a comparable 
password, to a computer through a data input apparatus. 
The computer furnishes the authorization process and is 

35 therefore called in the following by the abbreviation 
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authorizing computer. An alphanumeric or only numeric 
transaction authorization number TAN, or a comparable 
password, is calculated or read from a data file ' based 
on a random number generator in this authorization 
5 computer. This transaction authorization number TAN, 

or a similar password, is transmitted to a receiver by the 
authorizing computer through another transmission path 
disposed parallel to the existing connection with the 
data-input apparatus. This receiver can be for example: 
10 a) a wireless receiver with a display or a monitor 
such as for example a handy, a pager (for example a 
city-call receiver) , 

b) a specially constructed receiver card within the 
data input apparatus, which is accessed wirelessly or 

15 through a fixed wiring; 

c) a mailbox; 

d) a telefax apparatus; or 

e) a language output apparatus such as a fixed 
installed audio speaker or a telephone for the language 

20 transmission. 

The authorization computer includes a memory 
storage and has available the required telephone 
numbers, wireless call numbers, or fax numbers, email 
addresses or network addresses. The data reterring to 

25 this are usually stored in the authorization computer . 
However, it is possible that the authorization 
computer in turn shares and/or retrieves these data 
from a data source, which data source is resident on 
another computer. In addition, the authorization 

30 computer can also access this other computer on its own 
by using the method according to the present invention. 

The authorized user can enter the thus transmitted 
transaction authorization number or the comparable 
password manually into his/her data input apparatus and 

35 send the transaction authorization number TAN again to 
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the authorization computer. An automatic transmission 
of the transaction authorization number TAN or of the 
comparable password occurs according to the present 
invention in case of an automatic procedure. The 
5 authorization computer checks and verifies now the 

congruence and agreement between all valid transaction 
authorization numbers TANs or comparable passwords 
previously given out by the authorizing computer, and 
the authorization computer allows a release of the data 

10 flow between the data input apparatus and a receiver 
unit after this checking of the authorization. 

The transaction authorization number or the 
comparable password can be a transaction authorization 
number for one single use. However, other limitations 

15 such as the user time and/or the number or the size of 
the data files to be transmitted relating are also 
conceivable for use in determining the validity of the 
transaction authorization number or of the comparable 
password. 

20 Now, data can be transmitted from the data input 

apparatua to the receiver unit and vice versa, for 
example by full duplex, after a connection authorized 
in the above described manner has been established. 

It is clear that these data can also be encrypted 

25 or encoded first and then transmitted for obtaining 
additional security . 

Both the data input apparatus, as well as the 
authorization computer and the receiver unit can be 
furnished as standard personal computers. The present 

30 invention operates independent from the platform 

employed, i.e. independent of the type of processor, of 
the operating system and/or of the control electronics, 
for example of the receiver unit, and/or of the 
input/output units, for example of the data input 

35 apparatus and of the receiver unit. 
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The security of this system is based on the fact 
that a data transmission from the data input apparatus 
to the receiver unit has to be released and turned on 
by the authorization computer only in case of an 
authorization of the apparatus. This is accomplished by 
the employment of separate transmission paths between 
the data input apparatus and the authorization computer 
on the one hand, and between the authorization 
computer and the transaction-authorization-number 
transmission on the other hand- The present invention 
is insofar distinguished from call-back systems, where 
only one checking occurs between the data input 
apparatus and the authorization computer. 

The method according to a first aspect of the present 
invention allows to provide a number of different levels of 
security. 

A wireless receiver, for example in the form of a 
plug-in card, is incorporated as a receiver in the data 
input apparatus, representing the lowest security level 
such that a data transmission is possible to the receiver 
unit only with this concrete apparatus. In order to 
increase this security, it can be provided that this 
wireless receiver can only be operated with a user 
identification element, for example a magnetic card or a 
chip card. The user identification element can also 
operate with graphical methods, such as testing, 
verification and/or identification of a fingerprint or of 
a picture identification of the user. 

The further security level provides that the 
authorization computer transmits the transaction 
authorization number or the comparable password to a pager 
or a comparable apparatus. In this case, an authorization 
is furnished only when the data input apparatus and the 
pager are accessed by the same person. Only then is it 
possible that the transaction authorization number or a 



comparable password, displayed on the pager, are entered 
into the data input apparatus and are transmitted from 
there again to the authorization computer. 

Data transmitted to a pager can however be branched 
off and be listened to, A further security step can be 
obtained in the manner that matching encoding or encryption 
modules are employed in the authorization computer and in 
the pager. 

Another receiver apparatus can be furnished instead of 
the pager or the handy. This can for example be a mailbox, 
a telefax, a language output apparatus, a sound-receiver 
printed circuit board or an audio-response unit. Fixedly 
installed audio speakers or the transmission of the audio 
or voicemail to a defined telephone connection are possible 
to serve as an audio output unit and audio-response unit. 
An audio output of the transaction authorization number or 
of the comparable password is performed with the language 
output apparatus or audio-response unit. 

The transmission to such receiver apparatuses can also 
be encoded and/or encrypted. 

Further encoding mechanisms can be dispensed with if 
one employs a handy, in particular a GSM handy, instead of 
a pager based on the encoding of the respective 
transmission technique. In this case, the display of the 
transaction authorization number or of the comparable 
password is performed on the display of the handy. 

A further step of security can be accomplished by 
establishing a connection between the data input apparatus 
and the authorization computer only when a corresponding 
password is transmitted through the data input apparatus. 
This password can be valid according to the present 
invention for a time, which is substantially longer than 
the transfer authorization number TAN. 

A further step of security can be achieved by, 
requiring also a password already for the use of the data 
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input apparatus . 

It is apparent that a combination of the precedingly 
recited step of security is possible. 

In accordance with a second aspect of the present 
5 invention there is provided an apparatus for authorizing 
access to a communication line comprising a data input 
apparatus, an authorization computer connected through a 
first transmission path to the data input apparatus, a 
monitor connected to the authorization computer and 

10 disposed such that upon reading of an authorization signal 
on a monitor by a user, the user can enter the 
authorization signal into the data input apparatus; a 
receiver unit connectable to the data input apparatus 
through a line switchable by the authorization computer 

15 between the connected state and a disconnected state. 

The present invention can be universally employed in 
the region of data transmission systems. This holds for 
example also for the Internet and intranets, local area 
networks LAN, wide area networks WAN, etc. 

20 The system in question can also be employed 

outside of the classic electronic data processing, for 
example in connection with physical access controls. 
For this purpose, the user enters for example his or 
her personal password on a keyboard, representing a 

2 5 data input apparatus, and located next to a door. The 
authorization computer checks and verifies this 
password, possibly also in connection with the access 
permission to the concrete space at the concrete time. 
If the respective password is still valid, then the 

30 authorization computer provides the transaction 

authorization number or the comparable password to a 
handy or to an apparatus conceived for the special 
door closing system and functionally comparable with 
the pager. In the following, this transaction 

35 authorization number or the comparable password is 
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entered manually by the user to a keyboard disposed in 
proximity of the door and is further transmitted 
automatically to the authorization computer. After a 
successful verification, a signal is provided by the 
5 authorization computer for a release of the 

door-locking mechanism. The release can be limited in 
time, if desired. The receiver unit can in this 
case be of the most simple nature relative to its 
technological construction, since the receiver unit 
10 only has to process the signal for the release 

of the door-locking mechanism in such a way that the 
respective electro-mechanical system releases the door 
for opening. 

Thus, it is possible to construct a system where 
15 different persons have different authorizations for 
accessing different rooms. 

The concrete fields of application comprise, for 
example : 

computer centers 
20 airports 

ministries, government offices 
customs 

border transition points 
security regions 
25 banks 

police and military applications 
shielded storage, vaults, bank vaults 
garages 

parking houses 
30 automobiles 

The complete system receives its security from the 
combination of several different base principles and 
factors : 

(1) "what you have" (the GSM chip card riot to be 
35 duplicated), i.e. a physically unique structure which 



cannot be transferred without loss. 

(2) "what you know" (the PIN of the GSM chip card as 
well as the own user names in the data input apparatus 
and/or the authentication server) i.e. know-how which 
cannot be transferred without intent or by mistake. 

(3) DES-encoding and cryptographic authentication in 
the GSM net itselfi whereby resistance against 
listening attacks and manipulating attacks is obtained. 

The combination of at least three events, which 
events by themselves are already very improbable, is 
necessary for a compromising of the system; 

a) physical loss of the handy chip card, of the 
pager, or a foreign access to the mailbox, to the 
telefax, to the language output apparatus, or to the 
audio-delivery unit, 

b) giving out of the PIN number of the receiver (for 
example of the chip card or of the handy ) and 

c) knowledge of the transmitted transaction 
authorization number or of the comparable password. 

An inadvertent coincidence of these factors 
is nearly excludable, since also in this case the 
successful attack on the system presupposes the 
intimate knowledge of the access procedure and of the 
user identification ID, which is usually not present in 
case of an attack. In addition, the user has the 
possibility to block immediately or to have blocked 
immediately his or her user identification ID at the 
authentication server upon a loss of his or her chip 
card. 

A further advantage of the support of the GSM can be 
that the user is reachable all the time during the 
authorization process, i.e. the user can be directly called 
by the system administrator in case of access problems or 
doubts in regard to the identity of the user. 

This solution is associated with the advantage that 
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the solution is very secure, low cost, and realizable with 
widely available and secure, conventional hardware. 

A further solution according to the present invention 
comprises that the authorization computer and the receiver 
5 unit are present as a single apparatus. 

The present invention may be more fully understood 
from the description of preferred embodiments given below 
with reference to the accompanying drawings, by way of 
example only. 

10 

Brief Description of the Drawings 

In the accompanying drawing, in which are shown 
several of the various possible embodiments of the present 
invention : 

15 Fig. 1 is a view of a schematic diagram showing an 

operational system employing authorization in data 
transmission . 

Description of Invention and Preferred Embodiment 

20 The user sends according to a first step his or her 

qualifying identification through a data input apparatus 1, 
together with a request for generating or for selecting a 
transaction authorization number TAN or a comparable 
password from a data file, to an authorization computer 2. 

25 The authorization computer 2 generates the transaction 
authorization number TAN or the comparable password or 
selects the transaction authorization number TAN or the 
comparable password from a data file according to a second 
step. The authorization computer 2 sends the transaction 

30 authorization number TAN or the comparable password through 
a different transmission path as compared to the 
transmission path of the first step to a receiver 3 
according to a third step. The user takes this transaction 
authorization number TAN or the comparable password from 

35 the receiver 3 and enters the transaction authorization 
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number TAN or the comparable password into the data input 
apparatus 1 according to a fourth step. This transaction 
authorization number TAN or the comparable password is 
transmitted again to the authorization computer 2 
5 according to a fifth step. The authorization computer 2 
verifies the validity of the transaction authorization 
number TAN or of the comparable password according to a 
sixth step, in order to establish a connection between the 
data input apparatus 1 and a receiver unit 4 according to a 
10 seventh step. 

The transaction authorization number TAN or the 
comparable password can be a one-time usable 
transaction authorization number TAN or a one time 
usable password. The validity of the transaction 
15 authorization number TAN or of the comparable password 
can be limited to a predefined user time. The validity 
of the transaction authorization number TAN or of the 
comparable password can be dependent on a predefined 
number of the transmitted data files or on a predefined 
20 size value of the transmitted data files. 

Access to the data input apparatus 1 and/or to the 
receiver 3 and/or the receiver unit 4 can be protected 
by a password. The data transmitted from the data 
input apparatus 1 to the receiver unit 4 or vice versa 
25 can be encoded and the data transmitted from the data 
input apparatus 1 to the authorization computer 2 or 
vice versa are encoded. 

The apparatus for the authorization of data 
transmission systems includes a data input apparatus 1 
30 serving for entering a qualifying identification of a 
user into the data input apparatus 1 and for 
transmitting the qualifying identification and a 
request for an authorization signal from the data input 
apparatus 1 to the authorization computer 2 along a 
35 first transmission path. The authorization computer 2 



serves for establishing the authorization signal in the 
authorization computer 2, and for sending the 
authorization signal from the authorization computer 2 
to a monitor 3 along a second transmission path 
different as compared to the first transmission path. 
The monitor 3 serves for reading the authorization 
signal at the monitor 3 by the user. The data input 
apparatus 1 further serves for entering the 
authorization signal into the data input apparatus 1 by 
the user and for transmitting the authorization signal 
from the data input apparatus 1 to the authorization 
computer 2. The authorization computer 2 further serves 
for verifying the validity of the authorization signal 
in the authorization computer 2 and for establishing a 
connection between the data input apparatus 1 and the 
receiver unit 3 upon veriticatlon of the validity of 
the authorization signal. 

The receiver 3 can be a pager 31 or a handy 32. The 
receiver 3 can also be an email address or a net 
address, a telefax machine 33, or a language output 
apparatus or an audio reproduction unit. The language 
output apparatus or the audio reproduction unit can be 
a loud and audio speaker 34 or a telephone 35. 

The receiver 3 can be a radio receiver incorporated 
into the data input apparatus 1. The radio receiver can 
furnish the transaction authorization number TAN or the 
comparable password on the display or monitor of the 
data input apparatus 1. The radio receiver can include 
a user identification element. 

The user identification element can be a magnetic 
card or a chip card. The user identification element 
can operate with graphic devices for verifying a finger 
print or for a picture identification of the user. 

Matching encoding modules can be present in the 
authorization computer 2 and in the receiver 3. 
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The receiver element 4 can be a door-locking 
mechanism. 

The authorization computer 2 and the receiver " unit 
4 can be integrated into a s]Lngle apparatus. The data 
5 input apparatus, the authorization computer 2, and the 
receiver unit 4 can be integrated into one single 
apparatus . 

An authorized user actuates a data input 
apparatus 1. The authorized user enters and sends 101 

10 a request tor generating or for selecting and returning 
a transaction authorization number TAN or a comparable 
password to an authorization computer 2 along a 
transmission path 102 from the data input apparatus 1 
to the authorization computer 2. The authorization 

15 computer 2 generates a transaction signal such as the 
transaction authorization number TAN or a comparable 
password. The authorization computer 2 can derive the 
authorization signal from a random number generator 5 
or from a data file contained in the authorization 

20 computer 2. The authorization computer 2 knows the 
telephone number or the data address, for example the 
email address or net address of the receiver 3 of the 
. user of the data input apparatus 1. The authorization 
computer 2 sends this transaction authorization number 

25 TAN or a comparable password to a monitor representing 
the receiver 3 along a transmission path 103 from the 
authorization computer 2 to the monitor or receiver 3. 
The receiver 3 can be a pager 31 or a handy 32. The 
receiver 3 however can also be provided as the email 

30 address of a mailbox 37 and displayed on a monitor 36, 
a telefax apparatus 33, or a language output apparatus 
or audioreproduction unit. The audio-reproduction unit 
can be a fixedly installed audio speaker 34 or a 
telephone 35. The language output apparatus can be a 

35 computer 38 reconstituting language into sound or text 



The monitor can be a radio receiver incorporated 
into the data input apparatus, wherein the radio 
receiver furnishes the authorization signal on a 
display monitor of the data input apparatus. The radio 
receiver can include a user identification element 
furnished by an access card such as a magnetic card or 
a chip card. 

. The user reads this transaction authorization 
number or a comparable password from the receiver 3 or 
hears the transaction authorization number TAN from the 
language or audio output and enters 104 it manually 
into the data input apparatus 1. The data input 
apparatus 1 now transmits the transaction authorization 
number TAN or the comparable password to the 
authorization computer 2 along a transmission path 105 
from the data input apparatus 1 to the authorization 
computer 2. The authorization computer 2 verifies if 
this transaction authorization number TAN or the 
comparable password are still valid. For this purpose, 
the authorization computer can be programmed such that 
the validity of the transaction authorization number or 
of the comparable password is limited in time between 
its emission to the receiver 3 and its transmission 
through the data input apparatus 1. The time period 
limitation can for example amount to two minutes. If 
the transaction authorization number TAN or the 
comparable password are valid, then the authorization 
computer 2 furnishes a connection 107, 108 from the 
data input apparatus 1 to the receiver unit 4 . Now the 
user is able to transmit and/or to receive data from 
the data input apparatus 1 to the receiver unit 4 for 
the time period this connection 107, 108 is maintained. 

It is apparent that these data can be encrypted and 
encoded for additional security. 
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It is further conceivable that not only the 
transaction authorization number TAN or the comparable 
password have a time limitation with respect to their 
validity, but that also the time duration of the 
5 maintaining of the connection 107, 108 between the data 
input apparatus 1 and the receiver apparatus 4 is 
limited in time. Thereby, it can be avoided that a 
"standing" line is furnished between the data input 
apparatus 1 and the receiver unit 4, which gain could 

10 represent a hole in the security system. 

The authorization computer 2 and the receiver uni-t 
4 can be furnished by a single computer. In this case, 
a first access is performed to a data processing 
program, which performs the authorization process, 

15 including generation and transmission of the 

transaction authorization number TAN, in the manner 
precedingly described. The data transmission is then 
performed as a second step. 

The data input apparatus 1, the authorization 

20 computer 2 and the receiver unit 4 can even be a single 
computer, in this case, a first access is performed to 
a data processing program, which performs the 
authorization process, including generation and 
transmission of the transaction authorization number 

25 TAN, to the receiver in the way described above. The 
user obtains full access to or access limited to 
specific regions of the computer only after 
authorization . 

It will be understood that each of the elements 

30 described above, or two or more together, may also find 
a useful application in other types of authorization 
processes differing from the types described above. 

While the invention has been illustrated and 
described as embodied in the context of a method for 

35 the authorization in data transmission systems, it is 
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not intended to be limited to the details shown, since 
various modifications and structural changes may be 
made without departing in any way from the spirit of 
the present invention. 
5 Without further analysis, the foregoing will so 

fully reveal the gist of the present invention that 
others can, by applying current knowledge, readily 
adapt it for various applications without omitting 
features that, from the standpoint of prior art, 
10 fairly constitute essential characteristics of the 
generic or specific aspects of this invention. 



THE CLAIMS DEFINING THE INVENTION ARE AS FOLLOWS: 
1- A method for the authorization of data 
transmission systems comprising 

entering a qualifying identification of a user 
into a data input apparatus; 

transmitting the qualifying identification and a 
request for an authorization signal from the data input 
apparatus to an authorization computer along a first 
transmission path; 

establishing the authorization signal in the 
authorization computer; 

sending the authorization signal from the 
authorization computer to a monitor along a second 
transmission path different as compared to the first 
transmission path; 

reading the authorization signal at the monitor 
by the user; 

entering the authorization signal into the data 
input apparatus; 

transmitting the authorization signal from the 
data input apparatus to the authorization computer . 
verifying the validity of the authorization signal in the 
authorization computer; 

establishing a connection between the data input 
apparatus and a receiver unit upon verification of the 
validity of the authorization signal. 

2. The method according to claim 1 wherein the 
authorization signal is transmitted from the data input 
apparatus to the authorization computer along the first 
transmission path , 

3. The method according to claim 1 or 2; further 
comprising limiting acceptance of the authorization signal 
during verification of the validity of the authorization 
signal by the authorizing computer to a predefined number 
of times. 
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4 . The method according to any one of the preceding 
claims, further comprising limiting acceptance of the 
authorization signal during verification of the validity of 
the authorization signal by the authorizing computer to a 
5 predefined user time. 

5. The method according to any one of the preceding 
claims, further comprising limiting acceptance of the 
authorization signal during verification of the validity of 
the authorization signal by the authorizing computer 

10 depending on a predefined number of data files being 
transmitted. 

6. The method according to any one of the preceding 
claims, further comprising limiting acceptance of the 
authorization signal during verification of the validity of 

15 the authorization signal by the authorizing computer 

depending on a predefined size value of data files being 
transmitted. 

7. The method according to any one of the preceding 
claims further comprising employing a password for allowing 

20 accessing a member selected from the group consisting of 
the data input apparatus, the monitor, and the receiver 
unit . 

8. The method according to any one of the preceding 
claims, further comprising encoding the data transmitted 

25 from the data input apparatus to the receiver unit and vice 
versa . 

9. The method according to any one of the preceding 
claims, further comprising encoding the data transmitted 
from the data input apparatus to the authorization computer 

30 and vice versa. 

10. A method for the authorization of data 
transmission systems employing a transaction authorization 
number (TAN) or a comparable password, 

wherein a user sends according to a first step his or her 
35 qualifying identification through a data input apparatus. 




- 22 - 

together with a request for generating or for selecting a 
transaction authorization number TAN or a comparable 
password from a data file, to an authorization computer, 
wherein the authorization computer generates the 
5 transaction authorization number TAN or the comparable 

password or selects the transaction authorization number 
TAN or the comparable password from a data file according 
to a second step, wherein the authorization computer 
sends the transaction authorization number TAN or the 

10 comparable password through a different transmission path 
as compared to the transmission path of the first step to 
a receiver according to a third step, wherein the user 
takes this transaction authorization number TAN or the 
comparable. password from the receiver and enters the 

15 transaction authorization number TAN or the comparable 
password into the data input apparatus according to a 
fourth step, wherein thistransaction authorization number 
TAN or the comparable password is transmitted again to the 
authorization computer according to a fifth step, 

20 wherein the authorization computer verifies the validity 
of the transaction authorization number TAN or of the 
comparable password according to a sixth step, in order to 
establish a connection between the data input apparatus and 
a receiver unit according to a seventh step. 

25 11. The method according to claim 10, wherein 

the transaction authorization number TAN or the comparable 
password is a one-time usable transaction authorization 
number TAN or a one time usable password; wherein the 
validity of the transaction authorization number TAN or of 

30 the comparable password is limited to a predefined user 

time; wherein the validity of the transaction authorization 
number TAN or of the comparable password is dependent on a 
predefined number of the transmitted data files; wherein 
the validity of the transaction authorization number TAN or 

35 of the comparable password is dependent on a predefined 



size value of the transmitted data files. 

12. The method according to claim 10, wherein 
access to the data input apparatus and/or to the receiver 
and/or the receiver unit is protected by a password; 
wherein the data transmitted from the data input apparatus 
to the receiver unit or vice versa are encoded; wherein the 
data transmitted from the data input apparatus to the 
authorization computer or vice versa are encoded. 

13. An apparatus for authorizing access to a 
communication line comprising a data input apparatus; 
an authorization computer connected through a first 
transmission path to the data input apparatus; a monitor 
connected to the authorization computer and disposed such 
that upon reading of an authorization signal on a monitor 
by a user, the user can enter the authorization signal into 
the data input apparatus; a receiver unit connectable to 
the data input apparatus through a line switchable by the 
authorization computer between a connected state and a 
disconnected state . 

14. The apparatus according to claim 13, wherein the 
monitor is a member selected from the group consisting of 
a pager, a handy, an email address, a net address, a 
telefax machine, a language output apparatus, an audio 
reproduction unit, a radio receiver, and a telephone. 

15. The apparatus according to claim 13 or 14, 
wherein the monitor is a radio receiver incorporated into 
the data input apparatus, wherein the radio receiver 
furnishes the authorization signal on a display monitor of 
the data input apparatus. 

16. The apparatus according to any one of claims 
13-15 wherein the radio receiver includes a user 
identification element furnished by a member selected from 
the group consisting of a magnetic card reader, a chip card 
reader, a graphic device for finger-print identification, 
and a graphic device for picture identification. 




- 24 - 



17. The apparatus according to any one of claims 13- 
16 comprising a first encoding module present in the 
authorization computer; a second encoding module present in 
the monitor, wherein an encoding provided by the first 

5 encoding module matches an encoding of the second encoding 
module . 

18, The apparatus according to any one of claims 
13-17, wherein the receiver unit furnishes a door-locking 
mechanism. 

10 19. The apparatus according to any one of claims 

13-18, wherein the authorization computer and the receiver 
unit are integrated into a single apparatus. 

20. The apparatus according to any one of claims 
13-19, wherein the data input apparatus, the authorization 

15 computer, and the receiver unit are integrated into one 
single apparatus. 

21. The apparatus according to any one of claims 
13-20, wherein the data input apparatus serves for entering 
a qualifying identification of a user into the data input 

20 apparatus and for transmitting the qualifying 

identification and a request for an authorization signal 
from the data input apparatus to the authorization computer 
along a first transmission path; wherein the authorization 
computer serves for establishing the authorization signal 

25 in the authorization computer, and for sending the 

authorization signal from the authorization computer to a 
monitor along a second transmission path different as 
compared to the first transmission path; wherein the 
monitor serves for reading the authorization signal at the 

30 monitor by the user; wherein the data input apparatus 

further serves for entering the authorization signal into 
the data input apparatus by the user and for transmitting 
the authorization signal from the data input apparatus 
to the authorization computer; wherein the authorization 

35 computer further serves for verifying the validity of the 
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authorization signal in the authorization computer and for 
establishing a connection between the data input apparatus 
and the receiver unit upon verification of the validity of 
the authorization signal. 
5 22. A method for authorization of data transmission 

systems substantially as herein described with reference to 
the accompanying drawing. 

23. An apparatus for authorizing access to a 
communication line substantially as herein described with 
10 reference to the accompanying drawing. 

Dated this 22nd day of April 1998 
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ABSTRACT OF THE DISCLOSURE 

The invention relates to a method and to a device 
for the authorization in data transmission systems 
employing a transaction authorization number (TAN) or a 
5 comparable password. According to a first step^ the 
user sends a qualifying identification of the data 
input apparatus together with a request for the 
generation or for the selection of a transaction 
authorization number TAN or of comparable password from 

10 a data file from the data input apparatus to an 
authorization computer. In a second step the 
authorization computer generates the transaction 
authorization number TAN or the comparable password or 
selects them form a data file. According to a third 

15 step, the authorization computer sends the transaction 
authorization number TAN or the comparable password 
over a second transmission path different from the 
first transmission path to a monitor, for example a 
handy or a pager. According to a fourth step, the user 

20 reads this transaction authorization number TAN or the 
comparable password from the receiver and enters the 
transaction authorization number TAN or the comparable 
password into the data input apparatus. According to a 
fifth step, this transaction authorization number TAN 

25 or the comparable password is transmitted to the 

authorization computer. According to a sixth step, the 
authorization computer verifies the validity of the 
transaction-authorization number TAN or of the 
comparable password in order to establish or switch 

30 free, according to a seventh step, a connection between 
the data input apparatus and the receiver unit. 



